Aws Shared Security Responsibility Model
Security and compliance is a shared responsibility between aws and the customer.
Aws shared security responsibility model. The aws shared responsibility model is designed to increase the total security level of amazon s cloud infrastructure. By educating its customers on how they can manage and maintain strong operational protections both amazon and web services customers can feel better protected. The aws shared responsibility model dictates which security controls are aws s responsibility and which are yours. This allows aws to support the customer by taking on the burden of operations control associated with the physical infrastructure so the customer can focus on securing and producing within the context of software.
The gdpr does introduce specific regulation and responsibilities regarding data controllers and processors. The eu s general data protection regulation gdpr describes data processor and data controller roles and some customers and aws partner network apn partners are asking how this affects the long established aws shared responsibility model. This shared model can help relieve the customer s operational burden as aws operates manages and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the service operates. Aws responsibilities as a data processor.
This concept known as the shared responsibility model of cloud security was created in order for it security teams to adapt to the adoption and proliferation of cloud services. The shared responsibility model illustrates the various responsibilities of aws and our customers and apn partners and the same separation of responsibility applies under the gdpr. Once the customer starts using aws amazon shares the responsibility of securing the data in aws with its customers making aws security a shared responsibility. By the very nature of the phrase aws shared responsibility model we can see that security implementation on the aws cloud is not the sole responsibility of any one player but is shared between aws and you the customer.